Past research on information security has focused on protecting valuable resources from attacks by outsiders. However, statistics show that many security and privacy breaches are due to insider attacks. Protection from insider threats is challenging because insiders may have access to many sensitive resources and high-privileged system accounts. Suitable approaches need to combine several security techniques, like fine-grained access control, stronger authentication protocols, integrated digital identity management, and intrusion detection, with techniques from areas like information integration, machine learning, and risk assessment. In this talk, after an introduction to the problem of insider threats, I will present recent work addressing the problem of anomaly detection and response policies for database management systems and then discuss open research issues, emphasizing the role of techniques from the area of information integration.

Reception to follow in 301 Coordinated Science Lab.

More Information

March 25, 2015

A team of Cyber Center researchers, led by Professor Elisa Bertino director of Cyber Center, has developed stealthy return-oriented-programming (ROP) attacks to software running on small drones that use the Ardupilot Mega 2.5 (APM) platform.